Paragraphs admin – Moderately critical – – SA-CONTRIB-2023-049

Drupal Security Advisory

Date:
2023-November-01
Affected versions:
<1.5.0
Description:

This module enables you to view all paragraph entities in an admin view.
The module contains an access bypass that allows non admin users to access the view.
The vulnerability can be mitigated by editing the view to change the permission required to access the page.

Solution:

Install the latest version:

Reported By:
Coordinated By:

READ MORE